SciLinux: CVE-2009-2285 Moderate: libtiff SL3.0.x, SL 4.x,
Summary
Date: Tue, 28 Jul 2009 17:48:37 -0500Reply-To: Connie SiehSender: Security Errata for Scientific Linux From: Connie Sieh Subject: Security ERRATA Moderate: libtiff for SL3.0.x, SL 4.x, SL 5.x on i386/x86_64Comments: To: scientific Synopsis: Moderate: libtiff security updateCVE Names: CVE-2009-2285 CVE-2009-2347CVE-2009-2285 libtiff: LZWDecodeCompat underflowCVE-2009-2347 libtiff: integer overflows in various inter-color spaces conversion tools (crash, ACE)Several integer overflow flaws, leading to heap-based buffer overflows,were found in various libtiff color space conversion tools. An attackercould create a specially-crafted TIFF file, which once opened by anunsuspecting user, would cause the conversion tool to crash or,potentially, execute arbitrary code with the privileges of the user runningthe tool. (CVE-2009-2347)A buffer underwrite flaw was found in libtiff's Lempel-Ziv-Welch (LZW)compression algorithm decoder. An attacker could create a specially-craftedLZW-encoded TIFF file, which once opened by an unsuspecting user, wouldcause an application linked with libtiff to access an out-of-bounds memorylocation, leading to a denial of service (application crash).(CVE-2009-2285)The CVE-2009-2347 flaws were discovered by Tielei Wang from ICST-ERCIS,Peking University.SL 3.0.x SRPM: libtiff-3.5.7-33.el3.src.rpm i386: libtiff-3.5.7-33.el3.i386.rpm libtiff-devel-3.5.7-33.el3.i386.rpm x86_64: libtiff-3.5.7-33.el3.i386.rpm libtiff-3.5.7-33.el3.x86_64.rpm libtiff-devel-3.5.7-33.el3.x86_64.rpmSL 4.x SRPM: libtiff-3.6.1-12.el4_8.4.src.rpm i386: libtiff-3.6.1-12.el4_8.4.i386.rpm libtiff-devel-3.6.1-12.el4_8.4.i386.rpm x86_64: libtiff-3.6.1-12.el4_8.4.i386.rpm libtiff-3.6.1-12.el4_8.4.x86_64.rpm libtiff-devel-3.6.1-12.el4_8.4.x86_64.rpmSL 5.x SRPM: libtiff-3.8.2-7.el5_3.4.src.rpm i386: libtiff-3.8.2-7.el5_3.4.i386.rpm libtiff-devel-3.8.2-7.el5_3.4.i386.rpm x86_64: libtiff-3.8.2-7.el5_3.4.i386.rpm libtiff-3.8.2-7.el5_3.4.x86_64.rpm libtiff-devel-3.8.2-7.el5_3.4.i386.rpm libtiff-devel-3.8.2-7.el5_3.4.x86_64.rpm-Connie Sieh-Troy Dawson